CVE-2003-0350 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2003-0350
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2003-0350

Description: The control for listing accessibility options in the Accessibility Utility Manager on Windows 2000 (ListView) does not properly handle Windows messages, which allows local users to execute arbitrary code via a "Shatter" style message to the Utility Manager that references a user-controlled callback function.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/12543 VULNWATCH http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0015.html OVAL http://oval.mitre.org/oval/definitions/data/oval451.html MS http://www.microsoft.com/technet/security/bulletin/ms03-025.asp MISC http://www.ngssoftware.com/advisories/utilitymanager.txt BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=105777681615939&w=2 BID 8154

Return to the previous page.